---
title: "Set up SAML SSO authentication (generic)"
slug: "set-up-saml-sso-authentication-generic"
updated: 2026-01-08T11:43:06Z
published: 2026-01-08T11:43:06Z
---

> ## Documentation Index
> Fetch the complete documentation index at: https://help.gong.io/llms.txt
> Use this file to discover all available pages before exploring further.

# Set up SAML SSO authentication (generic)

> **Who can use this**: Tech admin
> 
> **Available on**: Any Gong plan

> **Where to go:**Admin center > Settings > Authentication

We support you in whatever SAML SSO provider you want to use for your people to log in to Gong.

This article describes the information you need to set up SAML SSO in Gong for non-specific providers. We have specific instructions for [Okta](/v1/docs/set-up-okta-saml-sso-authentication), [OneLogin](/v1/docs/set-up-onelogin-saml-sso-authentication), and [Rippling](/v1/docs/set-up-rippling-saml-sso-authentication). For any other providers, read on. This article includes information you may need to give your provider. Have questions? Check out the [Authentication FAQs](/v1/docs/authentication-faqs).

## **Prerequisites**

We ask for the following information:

- **Identity Provider Metadata URL** or **Identity Provider Metadata XML file**

The URL must be a public URL, meaning that it's publicly accessible, and it should generate a valid SAML Metadata response.

The XML response or the Metadata XML file must include two SSO bindings with a valid URL:

An example of the SAML response Gong receives:

![image__5_.png](https://cdn.us.document360.io/2837c190-3ec8-4120-9116-6d427e774667/Images/Documentation/24885942944397.png)
  - HTTP-POST
  - HTTP-REDIRECT
- The URL you want to redirect people to after they log out of Gong
- In your provider, set the **SAML name identifier** property to **emailAddress**
- In your provider, make sure that **Signed Authentication Request** is turned off

## **Your provider may need**

Your provider may ask you for some or all of the following:

- **Gong's entity ID**: [https://app.gong.io](https://app.gong.io) (use this value as written here and not the customer application domain)
- **Gong's ACS URL**: https://app.gong.io/welcome/okta/saml/login
- **X509 certificate**: Gong does not provide this certificate. Your provider should be able to provide one, if needed.

## Microsoft Entra ID SAML SSO setup

To set up authentication via Microsoft Entra ID:

1. Log into Microsoft Entra ID with admin credentials and select **Enterprise applications**.
2. Click **+New application > Create your own application**.
3. Give the application a name such as Gong SSO, keep the default settings and click **Create**.
4. In the application, select **Set up single sign on**.
5. Select **SAML**.
6. Edit the **Basic SAML Configurations** and enter the following values:
  1. Identifier (Entity ID): [https://app.gong.io](https://app.gong.io)
  2. Reply URL (Assertion Consumer Service URL): [https://app.gong.io/welcome/okta/saml/login](https://app.gong.io/welcome/okta/saml/login)
7. Click **Save**.
8. Edit the **Attributes & Claims** section as follows:

> [!NOTE]
> Note:
> 
> If you plan to provision team members via Microsoft Entra ID make sure you configure the permissions listed in [Microsoft Entra ID provisioning setup](/v1/docs/microsoft-entra-id-provisioning-setup#set-up-entra-id-to-provision-to-gong).
  1. Name identifier format: Email address
  2. Source: set to Attribute
  3. Source attribute: user.mail
  4. Delete any Additional claims
9. In the **Users and Groups**section, add the users or groups you want to have SSO login to Gong.
10. In the **Single sign-on** section, copy the App Federation Metadata URL.

Once you have set up Microsoft Entra ID for SSO authentication in Gong:

1. In Gong, go to **Admin center > Settings**> **Company**> **Authentication**.
2. In the **Identity provider metadata URL**, enter the App Federation Metadata URL you copied from Microsoft Entra ID.
3. In **After logout, redirect to**, enter [https://myapps.microsoft.com](https://myapps.microsoft.com) or a URL that displayes the applications the user has access to.
4. Click **Update**. Logout and login via Entra ID to test the SSO authentication.

A team member who manages and configures the Gong platform and handles CRM integrations, user provisioning, permissions, and system settings. [Find my Tech admin](/v1/docs/find-your-technical-or-business-admin).

Access to this feature depends on your [assigned seat](/v1/docs/plans-and-seats).